$ rpki-client -vvf rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft File: bODpSXEbID5KyyK2gPP_9H7RbGE.mft (raw, json) Hash identifier: VGrzUvV77p8DYDeFDGjG5YyMYCIIiFqqSoztBHWZ1XA= Subject key identifier: B6:03:D8:B7:EE:F5:9C:87:59:30:45:BA:79:22:50:4A:B8:5C:30:3C Authority key identifier: 6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 Certificate issuer: /CN=A91BDC3F/serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Certificate serial: 0179 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft Manifest number: 016B Signing time: Wed 25 Mar 2026 04:10:07 +0000 Manifest this update: Wed 25 Mar 2026 04:10:06 +0000 Manifest next update: Wed 01 Apr 2026 04:10:06 +0000 Files and hashes: 1: bODpSXEbID5KyyK2gPP_9H7RbGE.crl (hash: Qj9Q+GGExAfyxNH4eUq6daYH0icA7sumxNVM6WAxPxM=) 2: 7980C32AA71B11EFA8320136C4F9AE02.roa (hash: 7L805w4NJZDw/aT5my+9YcknXYTue/CgMt2GXEK4uAA=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 04:10:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 377 (0x179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDC3F, serialNumber=6CE0E949711B203E4ACB22B680F3FFF47ED16C61 Validity Not Before: Mar 25 04:10:06 2026 GMT Not After : Apr 1 04:10:06 2026 GMT Subject: CN=69c3601f-d173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cd:8e:40:ad:41:2a:d7:92:c0:78:09:03:11: a6:31:b6:bf:10:3c:01:2c:ad:fa:72:94:35:7b:d3: 6a:18:cb:27:73:94:c4:c2:40:f2:f6:b6:87:62:ef: 31:cf:ee:e0:9b:b4:de:dc:4a:01:f6:48:8b:4a:39: b3:b3:c2:9f:c1:ea:9a:35:02:b7:81:d4:7d:fb:a7: 3d:98:0b:0e:aa:4d:28:80:52:44:45:fb:f0:dc:29: 44:e7:6e:9b:8a:b9:ad:aa:74:ed:4d:2a:f5:0c:78: 3b:47:3d:ab:28:44:30:0e:3e:02:89:06:8a:18:dc: 3d:63:80:e4:ae:f9:29:fa:ff:a8:92:b1:c7:9b:8a: f5:2f:f5:b3:f4:cf:0d:2d:7d:50:b0:54:ad:14:74: f1:1f:e9:3f:c2:4c:5a:9c:ce:d7:39:c3:eb:95:3f: 63:58:27:6c:ed:13:87:9c:6f:d5:c3:c9:65:43:b1: 64:f2:a2:19:52:c7:70:83:d7:a8:03:b3:07:39:59: 33:1a:86:a1:36:74:5c:74:68:64:2d:eb:5a:0e:85: 28:16:26:ce:11:60:27:8b:fa:3f:0e:87:6a:3c:00: 1a:3d:54:0b:16:59:ed:df:20:8e:0a:00:0a:74:9c: a0:d5:65:58:40:88:8f:1f:f8:60:66:81:45:35:61: 3d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:03:D8:B7:EE:F5:9C:87:59:30:45:BA:79:22:50:4A:B8:5C:30:3C X509v3 Authority Key Identifier: keyid:6C:E0:E9:49:71:1B:20:3E:4A:CB:22:B6:80:F3:FF:F4:7E:D1:6C:61 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bODpSXEbID5KyyK2gPP_9H7RbGE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BDC3F/5CE810460EB011EF872E8127C4F9AE02/bODpSXEbID5KyyK2gPP_9H7RbGE.mft sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 97:2d:ed:50:7b:c7:c3:7e:3c:34:92:95:f3:c9:7c:a2:25:49: c9:56:b0:d2:d6:dc:42:73:1f:f3:90:13:8b:58:3a:58:3b:be: 1a:be:d7:ec:ad:ed:25:9b:f9:fb:94:45:26:5c:6e:8e:3e:28: 3e:ed:99:57:8d:9a:90:ef:43:5b:ae:1e:22:8b:0a:06:f5:51: b8:08:40:e0:37:52:60:ff:5a:dc:82:d5:66:52:61:0b:49:42: 8c:3e:55:01:48:fc:a7:c3:76:c0:c4:87:05:8d:9f:03:ad:2a: df:8b:c7:55:2c:6c:ba:23:7f:bf:ba:0c:23:1f:70:7d:0f:d4: 4d:b7:34:4c:6d:de:38:1a:09:68:ad:75:99:e5:bb:e8:7e:b0: e5:8d:2c:25:f3:7e:64:9c:d9:66:6e:97:a0:05:be:57:82:c9: a4:24:ab:65:3b:70:a7:c4:0f:5d:c1:1f:dd:be:80:da:63:54: 78:8d:13:4e:7c:12:c4:7f:05:75:4a:72:93:76:50:78:ac:c2: c4:2f:df:c2:87:83:f6:8b:d9:2f:b0:d4:0a:79:75:5b:93:b4: 16:f4:28:64:fa:9b:3e:e3:77:bc:08:df:8c:8f:c2:bf:04:54: bf:10:11:06:87:25:85:8d:3a:0f:3a:06:60:0f:57:1d:4e:8b: a5:ef:f9:ec -----BEGIN CERTIFICATE----- MIIFTzCCBDegAwIBAgICAXkwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkRDM0YxMTAvBgNVBAUTKDZDRTBFOTQ5NzExQjIwM0U0QUNCMjJCNjgwRjNGRkY0 N0VEMTZDNjEwHhcNMjYwMzI1MDQxMDA2WhcNMjYwNDAxMDQxMDA2WjAYMRYwFAYD VQQDEw02OWMzNjAxZi1kMTczMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsM2OQK1BKteSwHgJAxGmMba/EDwBLK36cpQ1e9NqGMsnc5TEwkDy9raHYu8x z+7gm7Te3EoB9kiLSjmzs8KfweqaNQK3gdR9+6c9mAsOqk0ogFJERfvw3ClE526b irmtqnTtTSr1DHg7Rz2rKEQwDj4CiQaKGNw9Y4Dkrvkp+v+okrHHm4r1L/Wz9M8N LX1QsFStFHTxH+k/wkxanM7XOcPrlT9jWCds7ROHnG/Vw8llQ7Fk8qIZUsdwg9eo A7MHOVkzGoahNnRcdGhkLetaDoUoFibOEWAni/o/DodqPAAaPVQLFlnt3yCOCgAK dJyg1WVYQIiPH/hgZoFFNWE9YQIDAQABo4ICczCCAm8wHQYDVR0OBBYEFLYD2Lfu 9ZyHWTBFunkiUEq4XDA8MB8GA1UdIwQYMBaAFGzg6UlxGyA+SssitoDz//R+0Wxh MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCREMzRi81Q0U4MTA0NjBF QjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklENUt5eUsyZ1BQXzlIN1Ji R0UuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL2JPRHBTWEViSUQ1S3l5SzJnUFBfOUg3UmJHRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIGQBggrBgEFBQcBCwSBgzCBgDB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC REMzRi81Q0U4MTA0NjBFQjAxMUVGODcyRTgxMjdDNEY5QUUwMi9iT0RwU1hFYklE NUt5eUsyZ1BQXzlIN1JiR0UubWZ0MBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAly3tUHvHw348NJKV88l8oiVJyVaw0tbcQnMf85ATi1g6WDu+Gr7X7K3tJZv5 +5RFJlxujj4oPu2ZV42akO9DW64eIosKBvVRuAhA4DdSYP9a3ILVZlJhC0lCjD5V AUj8p8N2wMSHBY2fA60q34vHVSxsuiN/v7oMIx9wfQ/UTbc0TG3eOBoJaK11meW7 6H6w5Y0sJfN+ZJzZZm6XoAW+V4LJpCSrZTtwp8QPXcEf3b6A2mNUeI0TTnwSxH8F dUpyk3ZQeKzCxC/fwoeD9ovZL7DUCnl1W5O0FvQoZPqbPuN3vAjfjI/CvwRUvxAR BoclhY06DzoGYA9XHU6Lpe/57A== -----END CERTIFICATE-----Generated at Thu Mar 26 22:39:42 2026 by rpki-client